FAQ

FAQ will try to help answer the most frequent questions and answers.

If you still have questions feel free to send us a support ticket here if you are an existing customer or contact us from the Contact Us page if you don’t have an account with us.

Do I have install agents on my ec2 instances for senturion guardian to work?

There is no software to install or agents to setup. We take advantage of native features built into AWS to detect threats to your AWS resources.

Do we need to write any code or scripts like some platform to take full advantage of all the automation features?

No, you don’t have to write one line of code to take full advantage of our platform and its automation features. We have done all the heavy lifting for you with our proprietary rules engine. Our platform comes with a baseline set of rule that you can setup and configure.

is there documentation to me guide through the setup of my AWS account for monitoring in senturion guardian?

Yes, there are video walkthroughs on how to setup permissions and add new accounts for monitoring and automation. Log into your account and you can navigate to “Setup Documentation” at the bottom of the sidebar menu at the very bottom.

Do I need to create user credentials for senturion guardian to access my aws account?

Senturion Guardian does not use user credentials such as username\password or Access Keys ID\Secret Access Key to gather threats from your account. We follow the AWS Security Best-Practice of using Cross Account Roles with External ID to Assume a Role in your AWS account. This avoids having to embed credentials as part of account configuration.

We use a CloudFormation template to allow you to easily setup only the permissions needed to gather various logging data such as CloudTrail, AWS GuardDuty and permissions needed to perform automation task.

Does senturion guardian ever destroy aws resources in my account?

At no time does Senturion Guardian ever have access to destroy AWS resources in your account. The role that is setup does not include delete actions on ANY resource in your AWS account.

where does senturion guardian get threat findings about my aws accounts?

We gathering all threat finding from AWS GuardDuty. We allow AWS to run your VPC Flow logs, CloudTrail logs and DNS logs through their machine learning models that are part of GuardDuty. We then allow you to setup up rules to reactivate the threats discovered in your AWS Accounts.